Title :
Security Enhancement of Ku-Wang Authenticated Key Agreement Protocol
Author :
Chang, Chin-Chen ; Lee, Jung-San
Author_Institution :
Dept. of Inf. Eng. & Comput. Sci., Feng Chia Univ., Taichung
Abstract :
Authenticated key agreement protocol is an essential cryptographic tool for permitting two participants, Alice and Bob, who never met before to authenticate each other and negotiate a common session key in an insecure network. In 1999, Seo and Sweeney first proposed an authenticated key agreement protocol using a pre-shared password. Later, Tseng pointed out that Seo and Sweeney´s protocol suffered from the replay attack. Tseng then presented an improvement to repair the weakness. Unfortunately, Ku and Wang soon showed that Tseng´s protocol is insecure against the modification attack and the replay attack. Then, Ku and Wang proposed an improved version to overcome the weakness from which Tseng´s protocol suffered. However, we find that Ku and Wang´s protocol is vulnerable to the off-line password guessing attack. In this article, we will show the security flaw of Ku and Wang´s protocol and present an improved authenticated key agreement protocol.
Keywords :
cryptographic protocols; message authentication; Ku-Wang protocol; authenticated key agreement protocol; cryptographic tool; offline password guessing attack; preshared password; security enhancement; Application software; Computer science; Computer security; Cryptographic protocols; Cryptography; Design engineering; Electronic mail; Information security; Intelligent systems; Law; key authentication; network communications; off-line password guessing attack; security;
Conference_Titel :
Intelligent Systems Design and Applications, 2008. ISDA '08. Eighth International Conference on
Conference_Location :
Kaohsiung
Print_ISBN :
978-0-7695-3382-7
DOI :
10.1109/ISDA.2008.334
